Protecting Outlook Web App and the Active Directory from Denial of Serice and Brute Force Attacks

If you had to choose, which security attack would you allow: opening your network up to brute force attacks or tolerating denial of service attacks? The first answer that probably comes to mind is neither. Yet, when configuring the account lockout policies in the Group Policy Management Console, this is the all-important question that you must ask yourself, because, depending on how you configure the account lockout threshold, you will be forced to allow one or the other attack. This is an especially delicate question when considering your Outlook Web App deployment because OWA and the Active Directory are both governed by the same account lockout policy settings. So, if there is an alternative choice that protects against both attacks without compromise, it would be worth considering.

To read the full article, go to:

Use Ctrl+Shift+R to "Reply all" to the selected message.


Will tablet and Smart phone use be a big part of your OWA 2013 deployment?